Pretty obvious and very relevant for all larger size installations and websites containing sensitive information.
I suggest a setting in composite.config to specify whether https is required for accessing the console or not. I'm getting pretty tired of rolling out a custom Http Module each and every time :/
Comments: ** Comment from web user: burningice **
I suggest a setting in composite.config to specify whether https is required for accessing the console or not. I'm getting pretty tired of rolling out a custom Http Module each and every time :/
Comments: ** Comment from web user: burningice **
Technically it would have preferred to have this setting in the composite.config, since its easier to maintain as few XDT Transform files as possible instead of targeting multiple configuration files.